DevSecOps Engineer

Cybersecurity referent for 3 projects in NIS homologation context :
– Patch management.
– Support on daily cybersecurity needs, questions or remediations.
– Validation during company process for security topics (Network flows, PKI…).
– Back-up Cybersecurity Referent on others projects.
– Credentials Hunting in many ways (servers, logs, pipelines, repositories…)
– Manual source code audits, dependencies and triage of SAST results.
– Production of hardening guides.
– Vulnerability monitoring on daily issued vulnerabilities.
– Benchmark and POC of SAST security solutions in C/C++ SDLC industrial context.

Research and development on the use of LLM AI models for cyber risk analysis using the EbiosRM method.

– Pentesting internal applications, popularising results and planning remediation workshops.
– Supporting project managers and developers on cybersecurity, quality and technical issues in projects.
– Full-stack development with a focus on security practices and a security-by-design approach.
– Cloud Architecture on Scaleway implementing IaC templates and hardening based on CIS Benchmarks.
– CI/CD automation, infrastructure provisioning and application deployment.
– Improving source code quality with SAST (Sonar, Renovate) and audit of architecture and practices.
– Improving secret detection and patch management with SAST (Gitleaks, Trivy) and audits of security practices.
– Multiple architecture studies (Secret management in application lifecycle, attack chain, developer pratices, low-code and no-code needs, comparative studies of firewall solutions…)
– Presentations and technical-trainings focusing on :
– Rust and Axum frameworks, Terraform with Gitlab CI, Security (OWASP, Forensic…).

– Architecture design and troubleshooting for Azure cloud solutions.
– Production of technical architecture documents.
– CI/CD automation for cloud provisioning and configuration of services across multiple environments.
– Migration of cloud provisioning from manual scripting and ARM templates to Terraform for customers.
– Full-stack and mobile development in an Agile Scrum environment.
– Reviewing and auditing web applications and cloud solutions.
– Presentation and technical lab with a focus on Terraform and its benefits in the enterprise stack.
– Organisation of an activity around OSINT and publicly available data, promoted ozint.eu challenges.